A newly discovered vulnerability in Apple's Siri, the iOS digital assistant, allows attackers with physical access to a locked Apple device to steal sensitive information. Despite the device being locked, Siri can process certain voice commands that may grant access to contacts and other data. Apple has released updates for multiple products, including iPhone, Apple Watch, iOS, iPadOS, and macOS Ventura, to mitigate this issue.
Affected Regions:
The threat potentially impacts users globally, as Apple products are widely used around the world.
Indicators of Compromise (IOC):
Affected Devices: iPhone, Apple Watch, iPads running iOS and iPadOS, macOS Ventura devices.
Vulnerable Versions: Prior to iOS 17.6, iPadOS 17.6, macOS Ventura updates.
Physical Access Requirement: The exploit requires physical access to the device.
Attack Chains:
Gain Physical Access: Attacker gains physical access to a locked Apple device.
Exploit Siri: Utilize specific voice commands that Siri can process even when the device is locked.
Access Sensitive Data: Extract sensitive information such as contacts and other personal data through Siri's responses.
Remediation:
Update Devices: Users should update to the latest software versions—iOS 17.6, iPadOS 17.6, macOS Ventura—by navigating to Settings > General > Software Update.
Restrict Siri Access: Consider disabling Siri access on the lock screen via Settings > Siri & Search > Allow Siri When Locked.
Monitor Physical Access: Ensure devices are not left unattended or accessible to untrusted individuals.
Educate Users: Inform users about the importance of installing security updates promptly and securing their devices physically.
Comments